Verified enforcement of security policies for cross-domain information flows

Proceedings - IEEE Military Communications Conference MILCOM

Volumn , Issue , 2007, Pages

  Swamy, Nikhil ^a   Hicks, Michael ^a   Tsang, Simon ^b  

^a UNIVERSITY OF MARYLAND   (United States)

^b TELCORDIA TECHNOLOGIES   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CASE STUDIES; COLLABORATIVE PLANNING; CROSS DOMAIN; INFORMATION FLOWS; LANGUAGES (TRADITIONAL); NETWORKED APPLICATIONS; PROGRAM ANALYSIS; SECURITY LABELS; SECURITY POLICIES; SECURITY REQUIREMENTS; SENSITIVE DATA; WORK-IN-PROGRESS (WIP);

COMPUTER PROGRAMMING LANGUAGES; COMPUTER SOFTWARE; LABELING; LABELS; LINGUISTICS; MILITARY COMMUNICATIONS; MILITARY OPERATIONS; QUERY LANGUAGES; SECURITY SYSTEMS;

SECURITY OF DATA;

EID: 47949111299     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/MILCOM.2007.4455189     Document Type: Conference Paper

References (8)

1. P. Buneman, A. Chapman, and J. Cheney. Provenance management in curated databases. In SIGMOD, 2006.
2. E. Cooper, S. Lindley, P. Wadler, and J. Yallop. http://groups.inf.ed.ac. uk/links, 2006.
3. M. Hicks, N. Swamy, and S. Tsang. Toward specifying and validating cross-domain policies. Technical Report CS-TR-4870, University of Maryland, 2007.
4. N. Li, J. C. Mitchell, and W. H. Winsborough. Design of a Role-Based Trust-Management Framework. In Security and Privacy, 2002.
5. A. Sabelfeld and A. C. Myers. Language-based information-flow security. IEEE Journal on Selected Areas in Communications, 21(1), 2003.
6. N. Swamy and M. Hicks. Fable: A language for enforcing user-defined security policies. Technical Report CS-TR-4876, University of Maryland, 2007.
7. N. Swamy, M. Hicks, S. Tse, and S. Zdancewic. Managing policy updates in security-typed languages. In CSFW, 2006.
8. D. Volpano, G. Smith, and C. Irvine. A sound type system for secure flow analysis. JCS, 4(3), 1996.